$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/3F3EDA068CAB11EF8A61C244C4F9AE02.roa File: 3F3EDA068CAB11EF8A61C244C4F9AE02.roa (raw, json) Hash identifier: qKYQTIuNetf08s/QdyHFkIsGPCt98g8A9E3PO6iYZZo= Subject key identifier: B5:D6:17:58:BB:C2:4A:E6:B3:F8:F2:69:85:48:33:0A:85:8D:64:60 Certificate issuer: /CN=A91EE03B/serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Certificate serial: 02A4 Authority key identifier: B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/3F3EDA068CAB11EF8A61C244C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:30:46 +0000 ROA not before: Thu 31 Jul 2025 04:10:42 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 153371 IP address blocks: 103.224.172.0/23 maxlen: 24 2401:b60:2c::/48 maxlen: 48 2401:b60:37::/48 maxlen: 48 2401:b60:38::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 02:28:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 676 (0x2a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE03B, serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Validity Not Before: Jul 31 04:10:42 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a485d6-a037 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:0d:6b:ac:bf:81:1c:3b:87:62:2c:f0:3e:cd: 51:20:17:ab:bb:6a:9c:93:01:ae:5f:02:c5:93:8d: c4:59:fb:81:77:62:bc:c5:99:fb:2c:f6:47:99:9a: 9e:33:bf:b1:ed:07:2c:bc:49:d5:32:7b:12:26:91: bf:ea:57:fc:09:63:15:28:14:c8:bf:4f:f4:c7:c3: a9:b7:9a:23:28:34:0f:47:56:78:66:80:74:de:27: 22:37:3c:dc:ca:8f:d0:9c:9e:01:a2:99:76:6c:26: 18:99:82:6c:93:10:6d:75:49:03:99:6e:33:16:6a: 9d:a3:c9:e4:1d:64:3f:9d:36:63:5d:a5:a5:38:10: 41:d7:ab:b5:2d:60:2e:09:8f:82:23:54:a4:ef:ea: e5:aa:2e:c6:8c:63:3a:36:06:cb:27:dc:e4:93:c8: e8:fb:93:cd:86:47:3c:c6:63:94:3c:02:49:79:73: f2:0c:2c:30:5a:38:81:0a:c9:ff:c7:ad:10:f9:84: 15:2f:97:16:f1:c0:a3:2b:18:25:17:a1:76:bd:96: 80:ce:f8:81:42:3e:a0:06:08:8f:2b:20:1b:32:dc: 24:e2:8e:3a:8e:e8:9c:ae:61:d3:93:a1:5e:dc:51: 62:64:59:f5:30:ec:26:17:cf:d9:9d:a5:3e:91:1b: 39:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:D6:17:58:BB:C2:4A:E6:B3:F8:F2:69:85:48:33:0A:85:8D:64:60 X509v3 Authority Key Identifier: keyid:B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/3F3EDA068CAB11EF8A61C244C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.224.172.0/23 IPv6: 2401:b60:2c::/48 2401:b60:37::-2401:b60:38:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 66:18:b7:57:08:ae:ca:6e:d2:d4:fb:27:f3:f3:a0:20:bb:e1: f7:03:73:5b:e4:89:f1:be:4a:95:5b:94:9e:b8:63:f5:19:29: 9a:d7:44:50:eb:96:7b:80:72:51:61:cf:ed:20:d6:42:55:a1: 83:de:77:16:80:ba:73:3e:32:de:42:6a:6f:4c:fd:5f:33:20: 9a:17:70:a3:29:19:f3:19:67:72:09:b0:10:7b:ad:5a:95:24: 0e:63:71:ff:d2:d3:6b:c2:3e:3f:3b:de:e5:9a:7f:e4:21:46: c6:2a:66:3a:34:70:bb:89:91:d3:b9:55:23:c6:c0:83:0c:d1: b8:d3:d7:e5:72:51:98:59:a7:ff:21:e3:41:b8:94:9c:a8:1b: 38:0f:10:fc:15:f1:ba:8a:f0:75:85:45:0e:a0:31:db:75:7b: 0d:3c:3c:53:bc:3b:e9:60:2e:a3:c3:54:e4:e1:2c:8d:63:e7: 07:c2:00:8c:19:eb:6a:41:f9:11:5c:a5:b0:84:6b:8f:af:aa: 39:cc:35:8d:da:f8:52:71:74:bd:bc:33:9b:af:77:e9:02:2f: bd:0e:bc:2a:99:c8:2b:1c:10:9d:f5:4f:d2:c1:da:a6:3d:08: f3:1c:81:61:71:d1:30:a8:b9:ee:f4:02:06:39:58:1b:96:65: f6:2b:52:ad -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgICAqQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUwM0IxMTAvBgNVBAUTKEI5RTYwQ0YxNzlGNEVBQ0JEQjk0OTJCQTVGN0NBQ0Y0 NTIzOUNDRjQwHhcNMjUwNzMxMDQxMDQyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODVkNi1hMDM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7A1rrL+BHDuHYizwPs1RIBeru2qckwGuXwLFk43EWfuBd2K8xZn7LPZHmZqe M7+x7QcsvEnVMnsSJpG/6lf8CWMVKBTIv0/0x8Opt5ojKDQPR1Z4ZoB03iciNzzc yo/QnJ4Bopl2bCYYmYJskxBtdUkDmW4zFmqdo8nkHWQ/nTZjXaWlOBBB16u1LWAu CY+CI1Sk7+rlqi7GjGM6NgbLJ9zkk8jo+5PNhkc8xmOUPAJJeXPyDCwwWjiBCsn/ x60Q+YQVL5cW8cCjKxglF6F2vZaAzviBQj6gBgiPKyAbMtwk4o46juicrmHTk6Fe 3FFiZFn1MOwmF8/ZnaU+kRs5nQIDAQABo4IChTCCAoEwHQYDVR0OBBYEFLXWF1i7 wkrms/jyaYVIMwqFjWRgMB8GA1UdIwQYMBaAFLnmDPF59OrL25SSul98rPRSOcz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTAzQi9BRjk2NzE2NjBC NkUxMUVFQjI5QkIxNzBDNEY5QUUwMi91ZVlNOFhuMDZzdmJsSks2WDN5czlGSTV6 UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VlWU04WG4wNnN2YmxKSzZYM3lzOUZJNXpQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUUwM0IvQUY5NjcxNjYwQjZFMTFFRUIyOUJCMTcwQzRGOUFFMDIvM0YzRURBMDY4 Q0FCMTFFRjhBNjFDMjQ0QzRGOUFFMDIucm9hMEQGCCsGAQUFBwEHAQH/BDUwMzAM BAIAATAGAwQBZ+CsMCMEAgACMB0DBwAkAQtgACwwEgMHACQBC2AANwMHACQBC2AA ODANBgkqhkiG9w0BAQsFAAOCAQEAZhi3Vwiuym7S1Psn8/OgILvh9wNzW+SJ8b5K lVuUnrhj9RkpmtdEUOuWe4ByUWHP7SDWQlWhg953FoC6cz4y3kJqb0z9XzMgmhdw oykZ8xlncgmwEHutWpUkDmNx/9LTa8I+Pzve5Zp/5CFGxipmOjRwu4mR07lVI8bA gwzRuNPX5XJRmFmn/yHjQbiUnKgbOA8Q/BXxuorwdYVFDqAx23V7DTw8U7w76WAu o8NU5OEsjWPnB8IAjBnrakH5EVylsIRrj6+qOcw1jdr4UnF0vbwzm6936QIvvQ68 KpnIKxwQnfVP0sHapj0I8xyBYXHRMKi57vQCBjlYG5Zl9itSrQ== -----END CERTIFICATE-----Generated at Sat Mar 7 08:07:21 2026 by rpki-client